X-Recipient: archive-cygwin AT delorie DOT com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:reply-to:from:to:subject:date:message-id
	:mime-version:content-type; q=dns; s=default; b=Ap6Q3RUQFtPoqoK2
	K+GZtHuiNcrric14pYkn615rLzUxjwb7f8eZKPYwW+f8Z93NRtQZKXLJlKYGXfc4
	8l/WJJYcQGR8K84ZWbPpJZvvWSg+e8YsH9u1wTQvgedk/Vm7W/rUsoIUEeP/TYu+
	vr86L1jXOW9C9z/WDe/KJFmzezw=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
	:list-unsubscribe:list-subscribe:list-archive:list-post
	:list-help:sender:reply-to:from:to:subject:date:message-id
	:mime-version:content-type; s=default; bh=aMcZBFjHs3ppznJincg3da
	pRL/A=; b=iLqlQ76Qilf7as7GoaxZf6knfaG9wtaqBHTy/urPcoW4d5WqmAZBxm
	Yrb2m+G4KHP3ON3Ol8Fe8BIzHALTNmaGEQprnV7ErbYi9x662N7ps+4HJz4WMXrc
	XDKsER00ZTYHwni5G2EW72Ck/va174TLXqJ23JDt31K9DfUPEVaik=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=-2.9 required=5.0 tests=ALL_TRUSTED,BAYES_00,T_HK_NAME_DR autolearn=ham version=3.3.2 spammy=vulnerabilities, frozen, rle, c89
X-HELO: localhost.localdomain
Reply-To: cygwin AT cygwin DOT com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
From: "Dr. Volker Zell" <lists AT volkerzell DOT de>
To: cygwin AT cygwin DOT com
Subject: [ANNOUNCEMENT] Updated: {gd/libgd3/libgd-devel}-2.2.4-1: A library for the dynamic creation of images by programmers
Date: Mon, 30 Jan 2017 11:22:19 +0100
Message-Id: <announce.vrivvaswsv8k.fsf@volkerzell.de>
MIME-Version: 1.0
Content-Type: text/plain
X-UI-Out-Filterresults: notjunk:1;V01:K0:Xqfq1PWT2M4=:0YR5tNwHACqaa7PaWdsgFi S5Q7SqSeNtUdlZ8k4ejzgcuy+PVuA+hncM4CcKeuvmvmjA/ORkHzzGPx1YmBD/xup66lYorrV Gv3VPXWrcE/UQRuTjH7NjaMtNXE3cjYCdGNiWvx6uFo01ofHzqY6iUu8Zr8zCwbHc4Gmb/Qot l7dHtEDpTtEDbIAQ7ErHucRYDay3vzNdSc4v3Wfrzbd4ejPapRZw2OiUTYr1GJ6n1lj7RtJsz qypAFELy3kITqGQRTPczkb2DyYJDxIqz1Hu3lt6D7UbZiVuKubro8J14JXxa3z02k6p/2Vz5m 8HYGNp6jZliGwVwLrhrz2Fcze2oKaQAuXnVKNYxx23UFDPXZ5sqcrL5B/x4D6NoMckKpST5bK i3VG6tTxRubkiUZ/MTnpp2GzL0nfTJk2W6uxMuRK+vvkONvWENG27r62tEZBNBVapVQGC909Y v7zVIcIQDbylqYgHyqTftrU2YZN78LROsenHqpi9uWB2TZd8IhyS6pTFS8kFkmYUPrj89rnwf 5waBgDTvlRSiXDOXE/ZIxw/XUf/aHNev94P2LC2ks1CvEkYde1Mbc8QrCWyuwAkrV15ORR9AD tzZWbVI1ALFedGnBYRxgOzcrLlksRoWZaxhuYBjzYbh9MurNaK9WzBPYagJnoyzcw9BgF5rBs AP5GEuZg91gFWbWJQPSOsht1VLuqg53Jo0sSrtSnXz/yu3aMiY3NrD91zvtjKWUQtrFEyraKv 92+YQ6ZtZQ6UgiEZ
X-IsSubscribed: yes

Hi

New versions of 'gd/libgd3/libgd-devel' have been uploaded to a server near you.

 o Build for cygwin 2.6.1 with gcc-5.4.0
 o Update to latest upstream release


gd NEWS:
========
  
Security

    gdImageCreate() doesn't check for oversized images and as such is prone to DoS vulnerabilities. (CVE-2016-9317)
    double-free in gdImageWebPtr() (CVE-2016-6912)
    potential unsigned underflow in gd_interpolation.c
    DOS vulnerability in gdImageCreateFromGd2Ctx()

Fixed

    Fix #354: Signed Integer Overflow gd_io.c
    Fix #340: System frozen
    Fix OOB reads of the TGA decompression buffer
    Fix DOS vulnerability in gdImageCreateFromGd2Ctx()
    Fix potential unsigned underflow
    Fix double-free in gdImageWebPtr()
    Fix invalid read in gdImageCreateFromTiffPtr()
    Fix OOB reads of the TGA decompression buffer
    Fix #68: gif: buffer underflow reported by AddressSanitizer
    Avoid potentially dangerous signed to unsigned conversion
    Fix #304: test suite failure in gif/bug00006 [2.2.3]
    Fix #329: GD_BILINEAR_FIXED gdImageScale() can cause black border
    Fix #330: Integer overflow in gdImageScaleBilinearPalette()
    Fix 321: Null pointer dereferences in gdImageRotateInterpolated
    Fix whitespace and add missing comment block
    Fix #319: gdImageRotateInterpolated can have wrong background color
    Fix color quantization documentation
    Fix #309: gdImageGd2() writes wrong chunk sizes on boundaries
    Fix #307: GD_QUANT_NEUQUANT fails to unset trueColor flag
    Fix #300: gdImageClone() assigns res_y = res_x
    Fix #299: Regression regarding gdImageRectangle() with gdImageSetThickness()
    Replace GNU old-style field designators with C89 compatible initializers
    Fix #297: gdImageCrop() converts palette image to truecolor image
    Fix #290: TGA RLE decoding is broken
    Fix unnecessary non NULL checks
    Fix #289: Passing unrecognized formats to gdImageGd2 results in corrupted files
    Fix #280: gdImageWebpEx() quantization parameter is a misnomer
    Publish all gdImageCreateFromWebp*() functions and gdImageWebpCtx()
    Fix issue #276: Sometimes pixels are missing when storing images as BMPs
    Fix issue #275: gdImageBmpCtx() may segfault for non-seekable contexts
    Fix copy&paste error in gdImageScaleBicubicFixed()

Added

    More documentation
    Documentation on GD and GD2 formats
    More tests

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple